Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: User auditing from AIX server
Operating Systems AIX User auditing from AIX server Post 302907821 by aixkidbee on Wednesday 2nd of July 2014 02:46:51 AM
Old 07-02-2014
Simple answer. No.
 

10 More Discussions You Might Find Interesting

1. AIX

User Auditing

i want to audit user commands .. keep track of what commands each user has been giving .. can this be done by writing a script in engraving it in .profile of the user. or is there any other way of doing this ... rgds raj (2 Replies)
Discussion started by: rajesh_149
2 Replies

2. AIX

turning auditing on AIX 4.3

Hi, What's the best way to turn on the auditing in AIX 4.3? I'm in an environment where root password are shared with many users. Can sudoers member be audited properly? Thanks (1 Reply)
Discussion started by: itik
1 Replies

3. AIX

user cannot login into AIX-6.1 server

Dear Friends , I got a problem In our AIX 6.1 server . When I start or restart the machine I cannot Login the server . It shows a dialog box and shows some comments , those are : >> The DT messaging system could not be started . To correct the problem : 1. Choose to return the login... (1 Reply)
Discussion started by: shipon_97
1 Replies

4. Shell Programming and Scripting

user auditing

Hello, is there some way to track what shell commands some user is executing ? Something like to have some log file where i could see what commands some user used, e.g. rm -r dirname , ls -l .... and so on ... I have 2.6.13-1.1526_FC4smp (9 Replies)
Discussion started by: tonijel
9 Replies

5. AIX

AIX auditing

I have a question relating with AIX auditing Question is can we set Auditing on a particular file in AIX for a particular application only? Let say I have a file name "info.jar" and I have three application named APP1, APP2 & APP3 which are accessing that file so I want to know that which... (0 Replies)
Discussion started by: m_raheelahmed
0 Replies

6. AIX

AIX Auditing problam

i have sucessfully enable the auditing on AIX with adding som onjects. but when i go for auditpr -v < /audit/trail vlets say i reset audit at last dat 5 pm auditpr -v < /audit/trail will show up to last day 5 pm. i have to reset audit every time to check latest logs. please... (3 Replies)
Discussion started by: prashantjain07
3 Replies

7. AIX

Help me! AUDITING AIX

Hi All, i've a problem on a AIX server with audit config... when i start the audit i receive this error: root@****:/etc/security/audit > /usr/sbin/audit start Audit start cleanup: The system call does not exist on this system. ** failed setting kernel audit objects I don't understand... (0 Replies)
Discussion started by: Zio Bill
0 Replies

8. AIX

AIX auditing

can some give some tips, most common security issues or and kind of advice about auditing aix system? regards (2 Replies)
Discussion started by: bongo
2 Replies

9. AIX

AIX auditing

In our customer place somebody removed and PV from the server. I want the information like which user removed this PV. Is there any way to get PV removal information. When did the PV removed from the server ? Whether AIX auding will help ? Where i can get these information ? Thank... (2 Replies)
Discussion started by: sunnybee
2 Replies

10. AIX

Configure AIX server to send logs and auditing to Qradar

Hi All I need your help to configure Aix to send logs to Qradar, I did all the methods that mentioned in IBM website and no use, Plz Help,, The Logs should I receive from Aix and display in Qradar is (create user delete user changing in privileges....etc ) my skype account khaled_ly84 ... (4 Replies)
Discussion started by: khaled_ly84
4 Replies

LEARN ABOUT HPUX

setaudproc

setaudproc(2)							System Calls Manual						     setaudproc(2)

NAME

       setaudproc() - controls process level auditing for the current process and its decendents

SYNOPSIS

DESCRIPTION

       controls  process  level  auditing for the current process and its decendents.  It accomplishes this by setting or clearing the flag in the
       area of the calling process.  When this flag is set, the system audits the process; when it is cleared, the process is not  audited.   This
       call is restricted to users with the privilege.

       One of the following flags must be used for aflag:

	      Audit the calling process and its decendents.
	      Do not audit the calling process and its decendents.

       The  flag  is  inherited by the descendents of a process.  consequently, the effect of a call to is not limited to the current process, but
       propagates to all its decendents as well.  For example, if is called with the flag, all subsequent audited  system  calls  in  the  current
       process are audited until is called with the flag.

       Further,  performs its action regardless of whether the user executing the process has been selected to be audited or not.  For example, if
       is called with the (or the flag, all subsequent audited system calls will be audited (or not audited), regardless of whether the user  exe-
       cuting the process has been selected for auditing or not.

       Due  to	these features, should not be used in most self-auditing applications.	should be used (see audswitch(2)) when the objective is to
       suspend auditing within a process without affecting its decendents or overriding the user selection aspect of the auditing system.

   Security Restrictions
       Some or all of the actions associated with this system call require the privilege.  Processes owned by the superuser have  this	privilege.
       Processes  owned  by  other users may have this privilege, depending on system configuration.  See privileges(5) for more information about
       privileged access on systems that support fine-grained privileges.

RETURN VALUE

       Upon successful completion, returns 0; otherwise, it returns -1 and sets to indicate the error.

AUTHOR

       was developed by HP.

SEE ALSO

       audevent(1M), audusr(1M), audswitch(2), getaudproc(2), audit(5), privileges(5).

																     setaudproc(2)
All times are GMT -4. The time now is 06:07 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy